NosirrahSec 🏴☠️ on Nostr: Has anyone got a sample of the vulnerable package and successfully exploited it? I'd ...
Has anyone got a sample of the vulnerable package and successfully exploited it?
I'd like to get my hands on it and throw some shit at it.
I didn't get any samples across our known endpoints at work.
#xzbackdoor #xzutils #xz
Published at
2024-03-30 15:55:41Event JSON
{
"id": "5d93fb355da6504bdf865fd393553e27b8f59e5ab2fb424011af0c3bd831c4d1",
"pubkey": "bb90a9857b08780405e950251eb5ebb701abb75462d0009e6e4bdfed668ec243",
"created_at": 1711814141,
"kind": 1,
"tags": [
[
"t",
"xzbackdoor"
],
[
"t",
"xzutils"
],
[
"t",
"xz"
],
[
"proxy",
"https://infosec.exchange/users/NosirrahSec/statuses/112185451551627896",
"activitypub"
]
],
"content": "Has anyone got a sample of the vulnerable package and successfully exploited it?\n\nI'd like to get my hands on it and throw some shit at it.\n\nI didn't get any samples across our known endpoints at work.\n\n#xzbackdoor #xzutils #xz",
"sig": "e3a876e114752850e3d6729035d307c1119b924e24ec095f8984ba279984bcc114d280cf649732df93390f1ba7b5aca3c173395cd7c83e15648dfae1363657a5"
}
